PCI-DSS is the payment standard used by Visa, American Express, Master Card and others.

There are now few areas where PCI-DSS is not compulsory for any businesses wanting to process payment card data.

Far from a static standard, PCI-DSS maintains a two-year revision cycle. Accordingly, the PCI-DSS standard requires a review of patch installation policies every month. For instance, PCI-DSS requires you to review firewall rules at least every 6 months.

The best thing of course is to avoid breaches altogether and that is what PCI-DSS is all about.

Pci dss is not merely a set of recommendations — non-compliance is not an option. It has four levels of attainment, each with different compliance validation procedures. It is required by Visa International, MasterCard Worldwide, American Express, JCB and Discover.

Pci dss was developed and is enforced by the payment card issuers. It has been clarified and added to several times over the years. It is one of the most important elements of commerce.